CVE-2011-2465

Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records, allows remote attackers to cause a denial of service (named daemon crash) via an unspecified query.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.6 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
VendorProductVersion
iscbind
9.8.0
iscbind
9.8.0:p1
iscbind
9.8.0:p2
iscbind
9.8.1:b1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
bind9
bullseye
1:9.16.50-1~deb11u2
fixed
squeeze
not-affected
lenny
not-affected
bullseye (security)
1:9.16.50-1~deb11u1
fixed
bookworm
1:9.18.28-1~deb12u2
fixed
bookworm (security)
1:9.18.28-1~deb12u2
fixed
sid
1:9.20.2-1
fixed
trixie
1:9.20.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bind9
natty
not-affected
maverick
not-affected
lucid
not-affected
hardy
not-affected
References
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062522.html
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00002.html
http://osvdb.org/73604
http://secunia.com/advisories/45185
http://www.isc.org/software/bind/advisories/cve-2011-2465
http://www.kb.cert.org/vuls/id/137968
http://www.securityfocus.com/archive/1/518750/100/0/threaded
http://www.securityfocus.com/bid/48565
http://www.securitytracker.com/id?1025743
https://exchange.xforce.ibmcloud.com/vulnerabilities/68374
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062522.html
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00002.html
http://osvdb.org/73604
http://secunia.com/advisories/45185
http://www.isc.org/software/bind/advisories/cve-2011-2465
http://www.kb.cert.org/vuls/id/137968
http://www.securityfocus.com/archive/1/518750/100/0/threaded
http://www.securityfocus.com/bid/48565
http://www.securitytracker.com/id?1025743
https://exchange.xforce.ibmcloud.com/vulnerabilities/68374